SweX 871 Posted July 17, 2014 Share Posted July 17, 2014 This blog post will explore a malware family named Win32/Aibatook, which targets Japanese users’ banking information and hosting providers’ account credentials. It appeared at the end of 2013 and a previous version has already been documented by Symantec, which has even sinkholed some of Win32/Aibatook’s C&C servers. Far from being discouraged, the operators have since published an updated version and moved from Delphi to C++ as their programming language. This post will focus on this new strain, which came out in April 2014 and has some interesting quirks: hxxp://www.welivesecurity.com/2014/07/16/win32aibatook/ Link to comment Share on other sites More sharing options...
SweX 871 Posted July 17, 2014 Author Share Posted July 17, 2014 (edited) Hacked Japanese porn sites spread banking malware attack Thinking of spending some time perusing Japanese porn websites before you do your online banking? You might want to think again. hxxp://www.welivesecurity.com/2014/07/16/hacked-japanese-porn-sites/ P.S I agree with Graham. Java is not my favourite cup of tea either. On a side note..... hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN3216&actp=search&viewlocale=en_US&searchid=1407607008415 for maximum security ESET recommends that you disable Java in your web browser or remove it entirely. Edited August 9, 2014 by SweX Link to comment Share on other sites More sharing options...
Arakasi 549 Posted July 17, 2014 Share Posted July 17, 2014 (edited) The Java vulnerability exploited by the attacks was patched by Oracle back in June 2013. Java is a very powerful programming language and can work into almost any piece of hardware. I hate it, but i love it too. I need it for a lot of things i do online. And if you own a smart phone running android ...... Edited July 17, 2014 by Arakasi Link to comment Share on other sites More sharing options...
SweX 871 Posted July 17, 2014 Author Share Posted July 17, 2014 But if we look beyond that..... There are even banks that require you to have Java install to be able to do online banking...I would rather change bank than have Java installed. Link to comment Share on other sites More sharing options...
Arakasi 549 Posted July 17, 2014 Share Posted July 17, 2014 (edited) But if we look beyond that..... There are even banks that require you to have Java install to be able to do online banking...I would rather change bank than have Java installed. Most banks use Java. Back in the day there wasn't many choices for web development ASP, CGI, JSP, PHP PHP has grown recently and become better. ASP couldn't involve more than 1 server CGI was slow Guess what was left. JSP Haha Now days it might be possible to find some PHP banking sites, but many are still using java, its cheap and the most used programming language today so its easy to find employees and web developers. Edited July 17, 2014 by Arakasi Link to comment Share on other sites More sharing options...
SweX 871 Posted July 17, 2014 Author Share Posted July 17, 2014 (edited) Really still today wow, well I know that two maybe even three of the biggest banks in my country does not require you to have Java installed to do online banking, kudos to them for not pushing Java on their customers. But many banks using Java can surely afford something better if they just want to. Edited July 17, 2014 by SweX Link to comment Share on other sites More sharing options...
Arakasi 549 Posted July 17, 2014 Share Posted July 17, 2014 Don't forget about Citibank and it's job cuts.... tight wads .... Link to comment Share on other sites More sharing options...
Recommended Posts